Page History

According to the Java API \[[API 062006|AA. Java References#API 06]\], class {{SecurityManager}} documentation:

Regarding the implementation and use of custom security managers as opposed to default ones, the Java Security Architecture Specification \[[SecuritySpec 082008|AA. Java References#SecuritySpec 08]\] states:

Notably, the policy file specified in the argument is ignored when the {{policy.allowSystemProperty}} property in the security properties file ({{java.security}}) is set to {{false}}. Its default value is {{true}}. The document "Default Policy Implementation and Policy File Syntax" \[[Policy 022002|AA. Java References#Policy 02]\] discusses writing policy files in depth.

\[[API 062006|AA. Java References#API 06]\] [Class SecurityManager|http://java.sun.com/javase/6/docs/api/java/lang/SecurityManager.html], Class AccessControlContext, Class AccessController
\[[Policy 022002|AA. Java References#Policy 02]\]
\[[Pistoia 042004|AA. Java References#Pistoia 04]\] Section 7.4, The Security Manager
\[[Gong 032003|AA. Java References#Gong 03]\] Section 6.1, Security Manager
\[[SecuritySpec 082008|AA. Java References#SecuritySpec 08]\] 6.2 SecurityManager versus AccessController
\[[MITRE 092009|AA. Java References#MITRE 09]\] [CWE ID 358|http://cwe.mitre.org/data/definitions/358.html] "Improperly Implemented Security Check for Standard"